Logevents v111003 analysis/pr-app-RDP123 s

Logevents v111003 analysis/pr-app-RDP123 s_keywords-all.html C:\IndigoPerl\bin\perl.exe 5.006

Description This is a legacy report. IAT started with just this report. Use this report to look for keywords that point to potential problems in the software. Some of the more important keywords are TBD and stub. In future releases of software try not to use TBD for items such as future. If you are web enabled, try re-running the report with other keywords. New potential issues may be surfaced.

Analysis	Comment
Keywords	This analysis shows the user selected keywords that were extracted from the original source code. There are also predefined keywords that are seperately reported by the tool in the Problems and Details analysis.
Problems	This analysis summarizes all the problems detected by the automated software analysis.
Details	This analysis shows the details from the original source code that are extracted from the search requests and internal error, warning, and caution settings. It also includes software metrics on a module basis.

Other Analysis Reports . Original Source Code . Instrumented Source Code . Help

12/08/2003 16:13:56

Keyword Stats

Good General Practices

use new and delete instead of malloc and free

do not use ?:

if a func has no parameters, use () instead of (void)

do not use goto

avoid declaring member variable with 'mutable' keyword

avoid declaring local variables with 'register' keyword

avoid declaring local variables with 'static' keyword

avoid do statements - potential endless loops

look for unusual and pertinent keywords

consistency is nice but not mandated

provide if with else

Good Security Practices

the bad fixed keywords are shown elsewhere

terminate case with break;

for each switch, provide default:

default: with security critical data should transfer to SwError

if else sequences with security critical data terminate in SwError

s_ files with if else sequences in many cases terminate in SwError

terminate other as identified if else sequences with SwError

look for undefined error codes in SwError

look for multiple uses of the same error codes

malloc should not be used on security critical data

if malloc is used on security critical data crypto zeroize before free

Number Sort

39	LE SV	4	halt	3	new	2	alloc	2	buffer	1	TBD
1	TBS	1	?	1	goto	1	Free

Alpha Sort

1	?	1	Free	39	LE SV	1	TBD	1	TBS	2	alloc
2	buffer	1	goto	4	halt	3	new

Keywords Not Found

debug	delay
return\;	while\(\d+\).	enable	disable	exception	demo
reuse	pragma	asap	nnoonnee	\bstub\b	malloc
dedicated	timeout	global	delete	mutable	friend
explicit

Possible Problems

Analysis Summary

Details Report

1 1 Source: source/pr-app/pr-app-RDP123/rdp-01.c Note: OK Classification Marking
Note: Good Header
1-15 rdp.1.1
1-92 rdp.1.2
1-137 A = (int)B + C; FATAL Compile Error: LE breaks int path 1-138 A = (int)B + C; Attention: Recasting (int) 1-213 . rcv_buffer = (U16 *) alloc(size+1); 1-301 dead_block = E * F; */ Attention: Dead Code 1-373 // TBD - what do I do now Attention: Possible problem Keyword TBD 1-373 . // TBD - what do I do now 1-388 rdp.1.3
1-418 // (P) this is really improtant Attention: Classified text in wrong file name: (P)
1-463 { case one: { switch (nested) Attention: Missing default 1-465 { { switch (nested) Attention: Nested switch 1-469 X = Y + Z; X = Y + Z; case: Attention: Missing break in case 1-492 dead_block = E * F; */ Attention: Dead Code 1-612 case: case: Attention: Stacked case statements 1-613 // stacked case statements but only if there is a new line in between case: Attention: Stacked case statements 1-614 . // stacked case statements but only if there is a new line in between 1-616 case: case: Attention: Stacked case statements 1-617 case: case: Attention: Stacked case statements 1-623 default: { halt; } Attention: Missing SwError 1-625 halt; Attention: Classified text in wrong file name: halt
1-625 . halt; 1-822 rdp.1.4
1-853 // (P) this is really improtant Attention: Classified text in wrong file name: (P)
1-871 A = (float)B + C; Attention: Recasting (float) 1-879 Warning: do Loop do forever; 1-936 rdp.1.5
1-991 rdp.1.6
Warning: Functions Exceed 6
1 1 Result: result/source/pr-app/pr-app-RDP123/rdp-01.c

2 2 Source: source/pr-app/pr-app-RDP123/rdp-01.h Note: OK Classification Marking
Note: Good Header
2 2 Result: result/source/pr-app/pr-app-RDP123/rdp-01.h

3 3 Source: source/pr-app/pr-app-RDP123/rdp-02.c Note: OK Classification Marking
Note: Good Header
2-15 rdp.2.1
2-113 // (P) this is really improtant Attention: Classified text in wrong file name: (P)
2-194 rdp.2.2
2-227 A = (long)B + C; Attention: Recasting (long) 2-279 rdp.2.3
2-296 A = (long)B + C; Attention: Recasting (long) 2-329 rdp.2.4
2-424 dead_block = E * F; */ Attention: Dead Code 2-448 rdp.2.5
2-469 // TBS - I need to figure this out Attention: Possible problem Keyword TBS 2-469 . // TBS - I need to figure this out 2-552if (veg) Warning: Missing curly brace looked as far as 557 2-668 // (P) this is really improtant Attention: Classified text in wrong file name: (P)
2-679 rdp.2.6
2-825 dead_block = E * F; */ Attention: Dead Code 2-836 . rcv_buffer = (U16 *) alloc(size+1); 2-930 rdp.2.7
2-986 FreePtr = HmiStringPtr; Attention: Storage FreePtr = HmiStringPtr; 2-986 . FreePtr = HmiStringPtr; 2-1115 // ??? go see ws Attention: Possible problem Keyword ?? 2-1115 . // ??? go see ws 2-1126 rdp.2.8
2-1153 Warning: goto Statement goto error; 2-1153 . goto error; 2-1226 { case one: { switch (nested) Attention: Missing default 2-1228 { { switch (nested) Attention: Nested switch 2-1232 X = Y + Z; X = Y + Z; case: Attention: Missing break in case 2-1284 dead_code = D + E; Attention: Dead Code 2-1330 rdp.2.9
2-1366 rdp.2.10
2-1394 case: case: Attention: Stacked case statements 2-1395 // stacked case statements but only if there is a new line in between case: Attention: Stacked case statements 2-1396 . // stacked case statements but only if there is a new line in between 2-1398 case: case: Attention: Stacked case statements 2-1399 case: case: Attention: Stacked case statements 2-1405 default: { halt; } Attention: Missing SwError 2-1407 halt; Attention: Classified text in wrong file name: halt
2-1407 . halt; 2-1468 dead_block = E * F; */ Attention: Dead Code 2-1492 halt; Attention: Classified text in wrong file name: halt
2-1492 . halt; 2-1499 case: case: Attention: Stacked case statements 2-1500 // stacked case statements but only if there is a new line in between case: Attention: Stacked case statements 2-1501 . // stacked case statements but only if there is a new line in between 2-1503 case: case: Attention: Stacked case statements 2-1504 case: case: Attention: Stacked case statements 2-1510 default: { halt; } Attention: Missing SwError 2-1512 halt; Attention: Classified text in wrong file name: halt
2-1512 . halt; Warning: Functions Exceed 10
Error: File with 642 LOC 3 3 Result: result/source/pr-app/pr-app-RDP123/rdp-02.c

4 4 Source: source/pr-app/pr-app-RDP123/rdp-02.h Note: OK Classification Marking
Note: Good Header
4 4 Result: result/source/pr-app/pr-app-RDP123/rdp-02.h

Settings

This is a legacy report. IAT started with just this report. Use this report to look for keywords that point to potential problems in the software. Some of the more important keywords are TBD and stub. In future releases of software try not to use TBD for items such as future. If you are web enabled, try re-running the report with other keywords. New potential issues may be surfaced. Description 6

Master Directories

Project Instrumentation Test
Source Result Analysis
Metrics

Report Markings
Report Marking
Highest Code Classification
Lowest Code Classification
Classified Keywords

Headers
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE C Header
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE H Header
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE asm Header

File Controls
Assembly Extensions
Access Files
Ignore Files
Paths
File Path
Src Paths (websever /~iat no websever ../../)
URL (websever /~iat no websever ../../ dos is blank)

Source Dir Path
Result Dir Path
Analysis Dir Path(no websever setting ../ft-red-B1B2D6_Ry)
Analysis Report Name
Files

toc file bfw file hmi file
toc html bfw html

General Settings
CPCs
1 2 3 4 5 6 7 Colors

Log Event Patterns
SV Events case Insensitive
Filter SV Events case Insensitive (e.g. traffic)
Filter Files case Insensitive
PURGE_BUFFER DB Events case Sensitive
HMI_CALL HMI Events case Sensitive
any\s*.\s*loc LOC Events case Sensitive
nnoonnee Filter LOC Events (e.g. traffic)

Table Driven Functions used by uncalled functions detector
nnoonnee

Fixed Keywords case insensitive
C
H
Assembly

Keywords case insensitive
debug|delay|return\;|while\(\d+\).|enable|disable|exception|demo|reuse|pragma|asap find 1
nnoonnee find 2
halt|\bstub\b|\? *:*|malloc|\balloc\b|\btbd\b|\btbs\b find 3
dedicated|buffer find 4
timeout| global|free|new |delete |goto|mutable|friend|explicit find 5

--\| ignore lines

Keyword Window

Hamming Patterns

Log Events
SV Start DB Start HMI Start LOC Start
Instrument Source LE Summary Auto Trace Fix LE English

Show in Details Report

Abstract SV REQUIRED Full Header All SourceCode Only SVCV src
Comments CV REQUIRED Rquirements Functions Show Only Affected Files Analyze Only LE SV

Reports
Control Menu Keywords Stats Metrics Ham Values Details Problem Summaries Problem Descriptions Compare

Reports - Automatic Detectors Default Problems Locked Files Date (e.g. 01/05/2003)

Fatal Printf C Headers H Headers ASM Headers

Class SV Marking CV Marking Keywords Code Keywords Prologues

No Curly Braces ifdef Switch Default's Default Error Case Break

Nested Switches Stacked Cases Calling Rules No Error Exit ?: operator

Func/File LOC/File Line Length < 5 LOC/Func > 100 LOC/Func

Uncalled Func's Dead Code Fuzzy Log Events ++/-- in if, else, while do Loops

malloc free Re-Casting goto No Func Header

Regression noise reduction for Automatic Detectors - must run regression.pl first
new files
mod files

Metrics Baseline Accessed
Metrics Saved (enable stats)

Hide Controls Show Checked Summary Checked Details Not Checked All

done
12/08/2003 16:13:56 start
12/08/2003 16:14:00 end

Abstract	SV REQUIRED	Full Header	All SourceCode	Only SVCV src
Comments	CV REQUIRED	Rquirements	Functions	Show Only Affected Files	Analyze Only LE SV

Fatal	Printf	C Headers	H Headers	ASM Headers
Class	SV Marking	CV Marking	Keywords Code	Keywords Prologues
No Curly Braces	ifdef	Switch Default's	Default Error	Case Break
Nested Switches	Stacked Cases	Calling Rules	No Error Exit	?: operator
Func/File	LOC/File	Line Length	< 5 LOC/Func	> 100 LOC/Func
Uncalled Func's	Dead Code	Fuzzy Log Events	++/-- in if, else, while	do Loops
malloc free	Re-Casting	goto	No Func Header